CVE-2025-36336 PUBLISHED

Transmission of Sensitive Information found in Watson Data Intelligence

Assigner: ibm
Reserved: 15.04.2025 Published: 30.06.2026 Updated: 01.07.2026

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS Score: 5.9

Product Status

Vendor IBM
Product watsonx.data intelligence
Versions
  • Version 5.2.0, 5.2.1, 5.2.2, 5.3.0 is affected

Solutions

Affected productFixed in releaseInstructionsIBM watsonx.data intelligence 5.2.0 - 5.3.05.3.1 https://www.ibm.com/docs/en/watsonx/wdi/2.3.x?topic=new-watsonxdata-intelligence

IBM strongly advises upgrading as soon as possible

References

Problem Types

  • CWE-319 Cleartext Transmission of Sensitive Information CWE